iotdb-operator/Dockerfile - iotdb-extras - Git at Google

 #
 # Licensed to the Apache Software Foundation (ASF) under one
 # or more contributor license agreements.  See the NOTICE file
 # distributed with this work for additional information
 # regarding copyright ownership.  The ASF licenses this file
 # to you under the Apache License, Version 2.0 (the
 # "License"); you may not use this file except in compliance
 # with the License.  You may obtain a copy of the License at
 #
 #     http://www.apache.org/licenses/LICENSE-2.0
 #
 # Unless required by applicable law or agreed to in writing,
 # software distributed under the License is distributed on an
 # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
 # KIND, either express or implied.  See the License for the
 # specific language governing permissions and limitations
 # under the License.
 #

 # Build the manager binary
 FROM golang:1.21 AS builder
 ARG TARGETOS
 ARG TARGETARCH

 WORKDIR /workspace
 # Copy the Go Modules manifests
 COPY go.mod go.mod
 COPY go.sum go.sum
 # cache deps before building and copying source so that we don't need to re-download as much
 # and so that source changes don't invalidate our downloaded layer
 RUN go env -w GOPROXY=https://goproxy.cn,direct && \
     go mod download

 # Copy the go source
 COPY cmd/main.go cmd/main.go
 COPY api/ api/
 COPY internal/controller/ internal/controller/

 # Build
 # the GOARCH has not a default value to allow the binary be built according to the host where the command
 # was called. For example, if we call make docker-build in a local env which has the Apple Silicon M1 SO
 # the docker BUILDPLATFORM arg will be linux/arm64 when for Apple x86 it will be linux/amd64. Therefore,
 # by leaving it empty we can ensure that the container and binary shipped on it will have the same platform.
 RUN CGO_ENABLED=0 GOOS=${TARGETOS:-linux} GOARCH=${TARGETARCH} go build -a -o manager cmd/main.go

 # Use distroless as minimal base image to package the manager binary
 # Refer to https://github.com/GoogleContainerTools/distroless for more details
 FROM gcr.io/distroless/static:nonroot
 WORKDIR /
 COPY --from=builder /workspace/manager .
 USER 65532:65532

 ENTRYPOINT ["/manager"]
	#
	# Licensed to the Apache Software Foundation (ASF) under one
	# or more contributor license agreements. See the NOTICE file
	# distributed with this work for additional information
	# regarding copyright ownership. The ASF licenses this file
	# to you under the Apache License, Version 2.0 (the
	# "License"); you may not use this file except in compliance
	# with the License. You may obtain a copy of the License at
	#
	# http://www.apache.org/licenses/LICENSE-2.0
	#
	# Unless required by applicable law or agreed to in writing,
	# software distributed under the License is distributed on an
	# "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
	# KIND, either express or implied. See the License for the
	# specific language governing permissions and limitations
	# under the License.
	#

	# Build the manager binary
	FROM golang:1.21 AS builder
	ARG TARGETOS
	ARG TARGETARCH

	WORKDIR /workspace
	# Copy the Go Modules manifests
	COPY go.mod go.mod
	COPY go.sum go.sum
	# cache deps before building and copying source so that we don't need to re-download as much
	# and so that source changes don't invalidate our downloaded layer
	RUN go env -w GOPROXY=https://goproxy.cn,direct && \
	go mod download

	# Copy the go source
	COPY cmd/main.go cmd/main.go
	COPY api/ api/
	COPY internal/controller/ internal/controller/

	# Build
	# the GOARCH has not a default value to allow the binary be built according to the host where the command
	# was called. For example, if we call make docker-build in a local env which has the Apple Silicon M1 SO
	# the docker BUILDPLATFORM arg will be linux/arm64 when for Apple x86 it will be linux/amd64. Therefore,
	# by leaving it empty we can ensure that the container and binary shipped on it will have the same platform.
	RUN CGO_ENABLED=0 GOOS=${TARGETOS:-linux} GOARCH=${TARGETARCH} go build -a -o manager cmd/main.go

	# Use distroless as minimal base image to package the manager binary
	# Refer to https://github.com/GoogleContainerTools/distroless for more details
	FROM gcr.io/distroless/static:nonroot
	WORKDIR /
	COPY --from=builder /workspace/manager .
	USER 65532:65532

	ENTRYPOINT ["/manager"]